CVE-2016-10197

Опубликовано: 15 мар. 2017

Источник: debian

EPSS Низкий

Описание

The search_make_new function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (out-of-bounds read) via an empty hostname.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libevent	fixed	2.0.21-stable-3		package

Примечания

https://github.com/libevent/libevent/issues/332
https://www.openwall.com/lists/oss-security/2017/01/31/17

EPSS

Процентиль: 80%

0.01446

Низкий

Связанные уязвимости

CVE-2016-10197

CVSS3: 7.5

ubuntu

больше 8 лет назад

The search_make_new function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (out-of-bounds read) via an empty hostname.

CVE-2016-10197

CVSS3: 7.5

redhat

больше 9 лет назад

The search_make_new function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (out-of-bounds read) via an empty hostname.

CVE-2016-10197

CVSS3: 7.5

nvd

больше 8 лет назад

The search_make_new function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (out-of-bounds read) via an empty hostname.

GHSA-p9p6-m8vm-vcxx

CVSS3: 7.5

github

около 3 лет назад

The search_make_new function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (out-of-bounds read) via an empty hostname.

openSUSE-SU-2018:0220-1

suse-cvrf

больше 7 лет назад

Security update for libevent

EPSS

Процентиль: 80%

0.01446

Низкий